DXCDT-349: Relax url fields validation to allow to be set to empty

[sergiught]

🔧 Changes

In this PR we are changing the validation for url fields to only allow HTTPS and empty strings.

📚 References

• Cannot unset initiate_login_uri on auth0_client #429
• Changing user_metadata on auth0_user results in an API error #400

🔬 Testing

Tests were updated to check for empty strings as well.

📝 Checklist

• All new/changed/fixed functionality is covered by tests (or N/A)
• I have added documentation for all new/changed functionality (or N/A)

[sergiught]

After some investigating in the api/v2 schemas it appears that we do allow urls with fragments. They just have to be https or empty.

[Widcket]

If this type of issue is frequent, we can consider in the future checking the validations directly against the ones in API2 code.

[sergiught]

We need here something we can compare as all the errors returned are pointers so we're transforming everything in a slice of strings.

[codecov-commenter]

Codecov Report

Base: 87.16% // Head: 87.31% // Increases project coverage by +0.14% 🎉

Coverage data is based on head (cdfeee0) compared to base (24917da).
Patch coverage: 100.00% of modified lines in pull request are covered.

Additional details and impacted files

@@            Coverage Diff             @@
##             main     #451      +/-   ##
==========================================
+ Coverage   87.16%   87.31%   +0.14%     
==========================================
  Files          42       42              
  Lines        9264     9245      -19     
==========================================
- Hits         8075     8072       -3     
+ Misses        914      902      -12     
+ Partials      275      271       -4     

Impacted Files	Coverage Δ
internal/provider/resource_auth0_client.go	97.17% <100.00%> (ø)
internal/provider/resource_auth0_guardian.go	93.73% <100.00%> (ø)
internal/provider/resource_auth0_tenant.go	97.72% <100.00%> (-0.02%)	⬇️
internal/validation/validation.go	100.00% <100.00%> (+69.56%)	⬆️

Help us with your feedback. Take ten seconds to tell us how you rate us. Have a feature suggestion? Share it here.

☔ View full report at Codecov.
📢 Do you have feedback about the report comment? Let us know in this issue.

[Widcket]

Should this be IsURLWithHTTPSOrEmptyString?

[sergiught]

IMO no, as the "O" is not part of "HTTPS" and it also reads easier.

A similar example was set in https://github.com/hashicorp/terraform-plugin-sdk/blob/8ffdd1ea219bc0bbb64c0e7a87bf081ad40ca3ee/helper/validation/web.go#L17.

[Widcket]

Should we check this some other way, instead of looking for a hardcoded error string? Maybe checking for empty string before the IsURLWithHTTPS validation?

[willvedd]

Wondering the same thing. Although that seems like too easy of a solution so wondering what we're missing.

[sergiught]

I wanted to avoid duplicating logic from within the IsURLWithHTTPS, specifically checking for the string type and then returning nil on an empty string. But I can skip using IsURLWithHTTPS and implement our own logic that's a tiny itsy bitsy bit more performant.

[Widcket]

Can't we keep IsURLWithHTTPS and do an empty string check before? No need to remove it. Note that it's not about performance, it's about depending on the error message string

[Widcket]

Though it's not a blocker for me.

[sergiught]

I updated this in 1007111 (#451) without making use of the IsURLWithHTTPS func from the SDK. I personally didn't like duplicating the type check and returning immediately if the url is empty as there was another check inside the sdk func for empty urls.